Simpler Navigation for Servers and Operating Systems
Completed: a much simpler Servers and Operating Systems section of the Community. We combined many of the older boards, so you won't have to click through so many levels to get at the information you need. Check the consolidated boards here as many sub-forums are now single boards.
cancel
Showing results for 
Search instead for 
Did you mean: 

oracle 8.1.4 writtable files

SOLVED
Go to solution
Ratzie
Super Advisor

oracle 8.1.4 writtable files

We are doing a security audit on world writable files.
ORACLE_HOME has a crap load of other writable files.
Can these be changed to:
chmod o-w *

./javavm/demo/*
./Apache/*
./otrace/admin
./network/admin/sqlnet.log
./network/log/listerner.log
./bin/*
./bin/*

2 REPLIES
Ben Dehner
Trusted Contributor
Solution

Re: oracle 8.1.4 writtable files

Ouch. It almost looks like there was a bad umask when Oracle was installed.

In my experience, none of that stuff ever has to be world-writable. I checked out our 8.1.7 and 7.3.4 installs, and nothing was world-write. You should be safe doing the "chmod o-w *"
Trust me, I know what I'm doing
T G Manikandan
Honored Contributor

Re: oracle 8.1.4 writtable files

Yeah, you need to check your umask on the server.

$umask

it should be 022 generally.

yeah, you can remove the write permissions for the others group and the directories you have pointed above are the ones related to log files mostly.
BTW, can you give a listing of your ./bin directory before we change the permissions.Thanks